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15. Abstract  I 


The  American  way  of  war  has  been  dependent  upon  information  dominance  in  the  battlefield  for  a  long 
time.  But  the  old  ways  of  waging  wars  where  the  overwhelming  force  of  the  US  provided  a  clear  advantage 
may  not  be  successful  in  fighting  the  wars  of  the  future.  This  paper  explores  some  of  the  problems 
associated  with  the  protection  of  operational  C4I  assets  in  the  current  era  and  how  CINCs  can  approach 
this  planning  issue. 

As  new  technologies  continue  to  emerge  and  are  integrated  into  information  systems  that  enhance 
decision  making  processes,  the  US  national  security  functions  are  becoming  more  and  more  dependent  on 
an  information  foundation  which  is  embedded  in  larger  national  and  international  infrastructures. 

During  the  cold  war,  vast  amounts  of  information  was  needed  by  the  National  Command  Authority  (NGA)  to 
formulate  broad  policies  and  build  national  level  strategic  plans.  But,  with  the  cold  war  now  over, 
regional,  military  operational  commanders  such  as  Commanders  in  Chief  (CINCs)  and  Joint  Task  Force  (JTF) 
commanders  need  effective  command  and  control  information  systems  to  help  them  plan  and  fight  wars. 

Militcury  operations  eure  now  so  dependent  on  national  public  and  private  information 
infrastructures  that  their  information  systems  are  a  critical  vulnerability.  These  vulnerabilities,  and 
how  they  influence  ccxnmand  and  control  must  be  better  understood  at  the  operational  level.  As  systems 
beccxne  more  integrated,  they  clLso  b^ome  more  vulnerable  to,  infiltration,  penetration,  and  sabotage. 
Though  information  technology  has  proliferated  at  an  astounding  level,  the  development  of  technologies 
to  protect  these  systems  has  not  grown  as  quickly.  Operationeil  commanders  should  place  greater 
emphasis  on  the  protection  of  their  systems  through  information  security  and  counter-command  and 
control  techniques. 
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Abstract  of 


Operational  Protection  of  C4I 

The  American  way  of  war  has  been  dependent  upon  information  dominance  in  the 
battlefield  for  a  long  time.  But  the  old  ways  of  waging  wars  where  the  overwhelming  force  of 
the  US  provided  a  clear  advantage  may  not  be  successful  in  fighting  the  wars  of  the  future. 
This  paper  explores  some  of  the  problems  associated  with  the  protection  of  operational  C4I 
assets  in  the  current  era  and  how  CINCs  can  approach  this  planning  issue. 

As  new  technologies  continue  to  emerge  and  are  integrated  into  information  systems 
that  enhance  decision  making  processes,  the  US  national  security  functions  are  becoming  more 
and  more  dependent  on  an  information  foundation  which  is  embedded  in  larger  national  and 
international  infrastructures.  During  the  cold  war,  vast  amounts  of  information  was  needed  by 
the  National  Command  Authority  (NCA)  to  formulate  broad  policies  and  build  national  level 
strategic  plans.  But,  with  the  cold  war  now  over,  regional  military  operational  commanders 
such  as  Commanders  in  Chief  (CINCs)  and  Joint  Task  Force  (JTF)  commanders  need  effective 
command  and  control  information  systems  to  help  them  plan  and  fight  wars. 

Military  operations  are  now  so  dependent  on  national  public  and  private  information 
infrastructures  that  their  information  systems  are  a  critical  vulnerability.  These  vulnerabilities, 
and  how  they  influence  command  and  control  must  be  better  understood  at  the  operational 
level.  As  systems  become  more  integrated,  they  also  become  more  vulnerable  to,  infiltration, 
penetration,  and  sabotage.  Though  information  technology  has  proliferated  at  an  astounding 
level,  the  development  of  technologies  to  protect  these  systems  has  not  grown  as  quickly. 
Operational  commanders  should  place  greater  emphasis  on  the  protection  of  their  systems 
through  information  security  and  counter-command  and  control  techniques. 
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Operational  Protection  of  C4I 
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Milan  N.  Vego 


I.  INTRODUCTION. 

In  the  process  of  preparing  for  possible  conflict,  the  operational 
commander  must  plan  the  execution  of  his  campaign  so  that  all 
operational  level  activities  or  operational  Junctions  are  synchronized. 
During  peacetime,  the  Commander  in  Chief  (CINC)  ensures  these 
functions  are  incorporated  into  their  plans  and  each  plan  is  ready  for 
combat  operations.  Of  all  operational  functions  (operational  command 
and  control,  operational  IntelUgence,  movement  and  maneuver, 
operational  fires,  operational  logistics,  operational  protection),  the  most 
important  is  command  and  control  (C2)  since  it  synthesizes  the  other 
functions  together  to  produce  the  unity  of  effort  needed  to  achieve 
strategic  goals.*  The  C2  support  system  that  integrates  this  whole 
process  is  the  Command,  Control,  Computer,  Communications  and 
Intelligence  or  C4I  Information  support  system.^ 


C4I  support  systems  Eire  viewed  as  some  of  the  most  important 
resources  the  commander  has  available.  Without  timely  and  accurate 
detEills  of  the  enemy’s  location,  strength,  and  intentions,  as  well  as 
knowledge  of  operational  forces,  the  commander’s  ability  to  fight  battles 
would  be  severely  limited  regardless  of  the  effectiveness  of  either  the 
weapons  or  troops.  Since  C4I  Eissets  are  such  critical  assets, 
commanders  Eire  compelled  to  expend  considerable  efforts  to  ensure  the 
theater’s  information  systems  are  protected. 


'  JMO  Dept.,  Operational  Functions.  Naval  War  College,  1995,  p.  2 
Mbid.  p.l2 
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In  the  post  cold  war  world,  advancements  in  information 
technology  are  drastically  changing  the  way  the  US  conducts  warfare. 
Modem  military  operations  encompass  integrated,  joint  maneuvers 
where  instantaneous  communications  are  essential  to  Intricate  command 
and  control  coordination.  Information  systems  (IS)  provide  the 
operationsd  commander  with  the  advantage  of  observing  the  battlespace, 
analyzing  events  and  directing  forces.  The  tactical  commander  has  the 
benefit  of  knowing  the  location  and  defenses  of  the  target,  enabling  the 
commander  to  select  the  most  effective  weapon  to  launch  an  attack.^ 
Improved  communications  and  information  sharing  provide  commanders 
with  unprecedented  quality  and  quantity  of  information  which  enhances 
their  battlefield  awareness.  Although  the  opportunities  for  streEimlining 
operations  and  improving  efficiency  are  enormous,  unfortunately,  so  are 
the  risks  associated  with  increased  dependency  on  Information  systems.^ 

n.  THESIS. 

The  increased  efficiency  in  military  operations  brought  about  by 
advancements  in  information  technology  is  considered  by  some  to 
indicate  another  revolution  in  military  affairs  (RMA).®  The  difficulty  with 
relying  on  information  technology  as  the  tool  to  provide  us  economies  of 
time  and  force  is  incorporating  the  protection  of  these  assets  into 
operational  plans.®  As  was  the  case  with  past  RMAs,  the  failure  of  the 
operational  commander  to  engage  technological  advancements  using 
operational  art  planning  techniques  have  defined  the  direction  of  the 
war.^  Forward  thinking  CINCs  will  employ  C4I  systems  using  the  tenets 
of  operational  design  and  planning  to  defend  their  assets. 


^  Ctefense  Science  Board  Summer  Study  Task  Force,  “Information  Architecture  for  the  Battlefield,”  1994,  p.ES-1 
GAO  Report,  “Information  Security-Computer  Attacks  at  Department  of  Defense  Pose  Increasing  Risks,” 
1996,  p.3 

^  Ronald  R.  Fogleman  and  Sheila  E.  Widnall,  “Cornerstones  of  Information  Warfare,”  p,l 
^  Ernst  K.  Isensee,  “Impacts  on  the  Operational  Commander  in  the  Information  Age,”  p.5 
^  Federal  Advisory  Committee,  “Information  Warfare-Legal,  Regulator>^  Policy  and  Organizational 
Considerations  for  Assurance,”  1996,  pp.  L  1;2.5 
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This  paper  will  explore  some  of  the  challenges  CINCs  face  in  trying 
to  protect  the  Information  assets  within  their  Eirea  of  operations  and 
ensuring  reliable,  secure  information  is  received  by  tactical  commanders. 
Discussions  will  focus  on  how  and  why  the  US  military  shifted  from 
reUance  on  a  closed,  proprietary  and  relatively  secure  information  system 
to  dependence  on  a  public,  vulnerable  information  infrastructure.  Finally, 
a  review  of  some  of  the  C4I  areas  most  vulnerable  to  enemy  penetration 
and  potential  damage  that  can  be  caused  to  operations  will  be  presented 
with  recommendations  of  what  the  operational  commander  must 
consider  to  protect  these  vlteil  assets. 

m.  BACKGROUND. 

A  What  led  the  US  military  to  become  so  reliant  on  an  information 
infrastructure  of  public  and  private  communications  networks? 

Initially,  because  of  the  sensitive  nature  of  military  operations,  DOD 
information  was  processed  and  transmitted  over  extremely  reliable  and 
robust  infrastructures  to  ensure  the  availabiUty  of  critical  information 
during  crises.  Information  processing  was  primarily  confined  to 
mainframe  systems  operating  in  physically  secure  facilities  and 
communications  were  conducted  over  a  dedicated,  redundant,  and 
survivable  communications  structure  known  as  the  Defense  Information 
Infrastructure  (DII).  As  DOD  began  to  stress  Joint  operations  and 
interoperabihty,  £md  it  saw  the  efficiencies,  cost  savings  and  overall 
successes  achieved  by  private  industries  such  as  banking,  retail  and 
manufacturing,  they  automated  and  interconnected  their  operations.  To 
further  enhance  production,  defense  industries  soon  turned  to 
commercial  networks  to  support  their  unclassified  operations.  As  the 
mihtary  increased  its  dependence  on  commercial  carriers  and  public 
networks,  the  results  were  improved  response  times,  more  economical 
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operations  and  overall  better  preparedness.  Although  operations 
Improved,  with  the  DII  was  no  longer  solely  a  defense  Infrastructure  but 
part  of  a  global  information  infrastructure  (GlI)  with  enormous 
interconnections,  it  was  at  increased  risk  of  unauthorized  access.®  By 
rel3dng  on  an  Infrastructure  of  public  and  private  communications 
networks,  the  military  is  enabled  to  make  more  effective  use  of  its  forces. 
However,  it  is  cdso  left  with  inadequate  protection. 

With  the  cold  war  over  and  the  threat  of  nuclear  attack  diminished, 
the  National  Command  Authority’s  need  for  information  to  formulate 
broad  pohcy  and  build  national  level  strategic  plans  has  been  reduced 
also.  Operational  commanders  are  now  the  major  users  of  information. 

In  order  to  cany  out  assigned  missions,  CINCs  must  ensure  information 
systems  are  protected  from  compromise.  The  challenge  would  not  be  so 
great  if  information  was  processed  and  transported  over  private  military 
communications  networks.  But  the  reality  is  that  95%  of  the  military 
communications  are  carried  over  public  switched  networks  that  are 
shared  ty  individuals,  governments  and  private  corporations  world-wide.® 
Without  adequate  protection  mechanisms  in  place,  sensitive  military 
operations  are  susceptible  now,  more  than  ever,  to  invasion,  sabotage, 
and/or  corruption. 

IV.  VULNERABILITIES. 

A.  Why  are  C4I  assets  so  vulnerable? . 

Information  warfare  grew  out  of  the  defense  department’s  desire 
for  Increased  information  integration.  The  US  military  relies  heavily  on 
information  systems  to  support  Department  of  Defense  (DOD)  functions 
such  as  payrolls,  research  data,  intelligence,  operational  plans. 


*  Ronald  Knecht  and  Ronald  A.  Gove,  ‘The  Information  Warfare  Challenges  of  a  National  Information 
Infrastructure,”  p.  1 

’  “Unclassified  Information  Warfare  Tutorial,”  Army  War  College,  p.  1 
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procurement  source  selection  data,  heedth  records,  personnel  records 
and  weapons  system  maintenance  records.*”  This  in  itself  makes  the  US 
vulnerable  to  information  warfare  (IW)  since  the  integrity  of  its 
information  directly  effects  the  success  of  military  operations.  But, 
tactical  operations  £ure  also  dependent  on  Information  systems.  Major 
weapon  systems  are  computer  driven.  Navigational  assemblages  require 
knowledge  based  guiding  for  precision  operations  and  targeting,  and 
commanders  are  increasingly  more  reliant  on  the  intelligence  provided 
by  computers  to  provide  them  with  dommant  situational  awareness." 

Today,  to  enhance  our  communication  efforts  and  promote 
information  sharing,  almost  all  DOD  voice  smd  data  telecommunications 
are  provided  by  public  networks  owned  by  common  carriers.  Critical  US 
information  systems  are  tied  to  the  private  £md  commercial  sector  with 
routine  uses  of  mternet,  INMARSAT,  INTELSAT,  and  EURUSAT.*^  On  a 
routine  basis,  defense  uses  the  internet  to  excheuige  electronic  mail,  log 
on,  download  and  upload  files  to  and  from  remote  sites  Eiround  the  world. 
International  networks  are  used  during  mllitaiy  operations  to  gather  and 
disseminate  intelligence  information  and  communicate  with  allies.  In 
addition,  commercial  satellites  are  rehed  upon  to  provide  back  up 
communication  support  since  public  messages  firom  regions  of  conflict 
can  provide  early  warnings  of  developments  sooner  than  traditional 
systems.*® 

Although  DOD  uses  closed  systems,  routers,  firewalls,  and 
encryption  to  secure  critical  networks  and  message  traffic,  these  secure 
transmissions  are  carried  on  the  public  switched  network  which  are  veiy 
vulnerable  to  IW  attacks.*^  While  current  information  technologies  offer 
enormous  substance  to  our  warfighters,  because  of  the  inherent 


Ibid,  p.6 

*'  Defense  Science  Board  Summer  Study  Task  Force,  “Information  Architecture  for  the  Battlefield,”  1994,  p.30 
Stefan  Eisen,  Jr.  “Netware,  Its  not  just  for  Hackers  Anymore,  NWC,  1995,  p.5 
GAO,  p.7 
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vulnerability  of  an  electronic  battlefield  and  the  adv£intages  offensive  fW 
assaults  offers  adversaries,  DOD  can  be  sure  it  vdll  be  the  target  of  an  fW 
attack.  The  Defense  Infomic  ion  Systems  Agency  (DISA)  reports  that  in 
1995  DOD  may  have  been  subjected  to  Informational  attacks  over 
250,000  times.  This  number  is  based  on  the  steadily  increasing  number 
of  reported  attacks  (53  in  1992,  115  in  1993,  255  in  1994,  and  559  in 
1995)  and  estimates  that  onfy  about  one  in  150  attacks  actually  being 
reported.*®  With  the  exponential  growth  this  problem  has  shown  in 
recent  years,  the  mlUtaiy  is  taking  this  situation  veiy  seriousfy. 

Another  reason  defense  is  threatened  by  IW  is  because  it  acts  as  a 
force  leveler.  No  other  nation  has  the  ability  to  challenge  the  US  in  a 
traditional  force  on  force  engagement.  IW,  however,  has  the  capability  to 
cause  catastrophic  breakdown  of  our  information  and  communications 
infrastructure  at  very  fittle  cost  and  minor  technical  training  in  the  past, 
the  resources  of  a  nation  was  required  to  wage  war.  Today  only  a 
computer  and  nodem  is  needed.*®  The  National  Security  Agency  has 
acknowledged  that  potential  adverseules  are  compiling  databcises  on  DOD 
C4I  systems  and  methods  of  attackmg  these  systems.  There  are  over  120 
countries  that  have  now,  or  are  m  the  process  of  developing  IS  assault 
capabilities.*’’ 

IW  is  an  attractive  warfare  option  to  adversaries  because,  not  only  is 
it  effective,  but  it  is  difficult  to  trace.  It  therefore  offers  the  jDerpetrator 
non-attrlbutionaiy  capabihties.  For  example,  in  1994  two  hackers  took 
control  of  the  laboratory  support  system  of  Rome  Laboratory,  the  Air 
Force's  premier  command  and  control  research  facility  in  New  York. 

They  established  links  to  foreign  internet  sites  and  stole  sensitive  tactical 
and  artificial  inteUigence  research.  To  avoid  detection,  they  first 


The  Army  War  College,  Information  Warfare  Tutorial 
GAO,  p.4 
**  Knecht,  p.7 
"  GAO,  p.5 
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accessed  the  lab  computers  via  phone  switches  in  South  America,  then 
through  east  and  west  eoast  commercial  sites  before  attacking  the  Rome 
site.  The  hackers  had  access  to  the  Lab  computers  for  three  days  before 
they  were  detected.  Had  they  opted  to  bring  the  network  down  upon 
Initial  intrusion,  there  would  have  been  no  way  to  detect  them.'® 
Understanding  this,  adversaries  are  now  positioning  themselves  for  a  new 
kind  of  warfare  within  the  information  sphere  where  they  can  exert  their 
will  on  the  US. 

B.  Where  are  we  most  vulnerable  to  C4I  attacks? 

The  image  that  comes  to  mind  when  you  think  of  an  attack  on  an 
information  infrastructure  is  a  human-induced,  deliberate  attack  on  a 
system.  These  attacks  are  by  far  the  most  common  and  most  serious. 
Attackers  have  stolen,  modified  and  destroyed  data  and  software  by 
installing  “backdoor”  files  to  allow  unauthorized  users  access  in  the 
future,  incorporating  trojan  horses  in  programs  to  provide  authorized 
users  with  the  ability  to  perform  unauthorized  functions,  and  introducing 
viruses  which  shut  down  entire  ^sterns  den5dng  services  to  users 
dependent  on  it  for  critical  missions.  These  examples  of  malicious  acts 
cari  cause  detrimental  harm  such  as  erasing  data  or  overloading  a  system. 
But  not  £ill  damage  is  deliberate.  Some  of  the  disruptive  forces  that  can 
corrupt  portions  of  the  Infrastructure  include  natural  events,  mlst£ikes  in 
code,  and  technical  failures.  Lightning  striking  a  critical  network  node 
could  cause  part  of  your  network  to  go  down  or  a  power  failure /electrical 
surge  could  cause  loss  of  data.'®  Assaults  can  take  the  form  of  a  physical 
attack  on  information  components  such  as  computers,  communications, 
software,  data,  cable;  information  infrastructures:  or  logic  attacks  on  data. 
No  matter  what  type  of  attack,  protection  is  still  needed  for  all  systems. 


**  Ibid.  pp.  12-14 

”  Chief,  Information  Warfare  Division  (J6K)  Command,  Informatim  Warfare-Legal.  Regulatory.  Policy  and 
Organizational  Considerations  for  Assurance.  1995,  p.2-6 
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Some  very  vulnerable  areas  are: 


(1)  Equipment.  The  miniaturization  of  teehnology  provides  forces  with 
portable  computers  and  communication  systems  to  modify  plans,  tactics 
and  strategies  in  real  time.  However  portable  technology  also  gives  rise 
to  problems  of  compromise.  Placing  equipment  closer  to  the  conflict 
provides  adversaries  access  to  vital  US  communications  circuits  and  thus 
strategic  and  tactical  information.^ 


(2)  Communications.  Communications  between  senior  national  or 
military  leaders  are  critical  to  the  execution  of  military  operations.  The 
military  depends  on  the  rapid  transmission  of  satellites  to  facilitate 
communications,  and  because  the  US  militaiy  relies  so  heavily  on 
telecommunications  for  all  levels  of  communications,  there  are  many 
threats  to  these  assets.  IW  attacks  against  satellite  communications 
might  hinder  dialog  by  crippling  satellites  and  sateUite  transmission 
stations,  or  jam  selective  radio  transmission  points.  Attacks  on  stationary 
tr&nsimtters  and  relay  stations  should  be  expected  from  conventional  and 
non-conventional  sources.  Though  disruption  of  radio  transmissions  is 
not  new,  there  are  new  techniques  (or  old  techniques  to  new 

applications)  which  expand  the  spectrum  of  threats  to  communications 
systems.^’ 

(3)  Data  manipulation.  The  possibility  of  false  or  misleading 
communications  represent  a  significant  threat  to  military  operations.  An 
example  of  this  was  during  the  Vietnam  War  when  North  Vietnamese 
radio  operators  Impersonated  soldiers  to  call  in  air  strikes.  Future 
attacks  could  take  the  form  of  one  side  modifying  target  data  in  another’s 
computer.  To  avoid  information  uncertainties,  it  is  critical  that  data 


“  Ibid.  p.  2-62 
''  Ibid.  2-66 
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integrity  be  sissured.  Encryption,  though  good,  does  not  ensure  data 
integrity  since  introducing  false  data  bits  or  modifying  data  elements  in  a 
data  base  can  be  done  without  reading  the  internal  message.  Individuals 
have  also  rerouted  commercial  lines.  If  used  with  mllitaiy  circuits,  this 
technique  could  allow  adversaries  to  request  false  attacks,  delete  correct 
data  or  add  false  data  which  could  damage  US  interests 

(4)  Personnel.  Much  of  the  new  systems  architecture  that  will  be  used  in 
future  conflicts  will  most  probably  be  shared  by  coahtion  members  or 
allicmce  partners.  When  fighting  as  a  technology  dependent  international 
organization  using  systems  that  bind  US  troops  with  allies,  the  militaries 
are  dependent  on  information  systems  to  maintain  and  deploy  major 
weapon  systems.  These  systems  are  vulnerable  to  attack  by  any  number 
of  adversaries  who  want  to  exert  their  will  on  eiUied  forces  by  disrupting  a 
coordinated  campaign  There  are  no  guarantees  this  technology  will 
not  be  shEU’ed  with  an  adversary  or  used  against  the  US  in  a  future 
conflict.  US  forces  must  assume  that  shared  Information  is 
compromised  information.^  If  it  is  not  a  closed  US  mlhtaiy  system,  it 
must  be  expected  to  be  vulnerable  and  subject  to  compromise. 

Another  area  of  concern  is  couriterinteUigence.  International  espionage 
has  been  redirected  from  the  individual  with  access  to  classified 
materials  to  network  administrators  and  computer  servicemen.  Defense 
computer  systems  are  extremely  complex  and  require  constant 
maintenance  to  operate  efficiently.^  Unless  service  personnel  are 
properly  Indoctrinated  in  operational  security  (OPSEC)  measures,  this  is 
another  potentially  vulnerable  area.  The  difficulty  in  keeping  accurate 
audit  trails  of  those  who  use  the  system  and  when  they  used  it  could 
provide  a  potential  adversary  with  an  offensive  IW  opportunity. 


“  Ibid.  p.  2-67 

®  July  Ryan,  Gary  Federici,  and  Tom  Thorlev.  Information  Support  to  Militav  Operations  in  the  Year  2000  and 
Beyond:  Security  Implications.  1993,  p.l7 
^  J6C,  p.  2-63 
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Though  not  a  specific  vulnerability,  the  lacK  of  doctrine  addressing 
information  issues  could  possibly  be  an  area  an  adversary  might  exploit. 
The  complexity  of  this  new  public /private  operating  environment  has 
delayed  the  formulation  any  comprehensive  information  policy.  While 
activities  are  underway  at  the  national  level  to  address  political  and 
strategic  information  protection  issues,  the  operational  commander 
needs  to  take  immediate  action  to  safeguard  these  assets. 


V.  OPERATIONAL  PROTECTION. 

A.  Why  should  combatant  commanders  develop  plans  to  protect 
C4I  systems? 

Improved  information  connectivity  increases  tension  between 
operational  security  and  effective  planning.  As  system  integration 
increases,  operational  security  decreases.  To  counter  decreases  in 
security  due  to  force  integration  and  C4I  vulnerabilities,  the  CINC  must 
develop  an  operational  protection  strategy  that  provides  information 
assurance  for  the  theater  of  operations. 

Currently,  information  technology  is  expanding  faster  than  the 
understanding  of  inherent  vulnerabilities.  For  this  reason,  combatant 
commanders  have  difaculty  attempting  to  integrate  defensive  IW 
techniques  into  their  operations.  Operational  planning  for  C4I  protection 
will  ultimately  boil  down  to  balancing  the  use  of  advanced  technology 
with  its  potential  risks.  If  CINCs  plan  to  use  information  systems  as  a 
force  multipher,  they  must  also  be  prepared  to  develop  appropriate 
controls  to  ensure  its  availability,  confidentiality  and  integrity. 
Unfortunately,  most  emphasis  is  placed  on  exploring  the  advantages  of 

“  Ibid,  p.5 
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technology;  but  without  a  C4I  protection  plan,  the  commander  exposes 
his  operations  to  unneeded  risks.^ 

B.  What  is  the  ClNCs  role  in  the  information  age? 

CINCs  are  tasked  with  conducting  decisive  regional  operations.  To 
cany  out  this  mission,  control  over  both  the  process  and  the  output  must 
be  exerted In  the  information  age,  CINCs  need  to  control  information 
support  systems  and  make  sure  Information  gets  to  where  it  is  need  to  in 
a  timely,  protected  manner.  In  the  past  Information  responsibihties  were 
assigned  to  J-6  staffs.  But  responsibilities  for  information  protection 
should  not  be  centradlzed  in  support  departments  such  as  information 
resources  or  security.  Information  assuremce  is  a  front  line  operation 
which  warremts  the  immediate  attention  of  the  commander.  CINCs  needs 
to  understand  that  information  assurance  within  the  theater  resides  with 
them.  Operational  commanders  must  rely  on  their  J6  staffs  to  keep  up 
with  what  the  information  systems  are  and  how  th^  operate;  but  CINCs 
have  to  understand  the  limits  of  information  and  technology,  and  what 
can  be  done  in  the  Information  world  in  order  to  define  the  requirements 
of  the  theater.^ 

C.  Operational  Planning  for  the  Protection  of  C4I. 

The  CINC’s  goal  for  the  protection  of  C4I  assets  should  be  to 
provide  a  theater  Infrastructure  with  built  in  resilience  for  its  information 
Emd  support  resources.  The  first  step  in  achieving  this  goal  is  to  conduct 
a  net  Eissessment  of  assets.  The  net  assessment  will  identify 
infrastructure  functional  dependencies,  and  when  dependencies 
increase,  as  in  times  of  conflict,  maximum  capacity  of  the  infrastructure. 

It  will  also  highlight  discrepancies  and  equipment  vulnerabilities  in  the 


“  Isensee,  p.l 
^  Rice,  p.3 
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Infrastructure,  and  personnel,  training,  strategy  and  policy  shortfalls.^ 
Once  functional  dependencies  are  evaluated  and  deficiencies  are 
identified,  actions  can  be  prioritized  according  to  the  tL  der  goals. 

Since  information  proliferation  is  continuous,  the  CINC’s  assessment  of 
priorities  in  the  protection  plan  must  be  an  iterative  process. 

Planning  must  Include  four  levels:  protection,  detection,  limitation, 
and  recovery.^ 

PROTECTION.  In  the  past,  industries  have  protected  their  Information 
assets  by  incorporating  network  encryption,  network  sniffers/ 
watchdogs,  firewalls,  routers,  and  authentication  techniques  into  their 
information  systems.®^  Although  future  strategies  also  seem  to  point  in 
this  direction,  a  severe  “denial  of  service  “  assault  by  an  adversary  would 
render  all  these  protective  mechanisms  useless.  Encryption  signals  work 
fine  for  protecting  the  contents  of  inforr  ion,  but  although  an  attack  on 
an  encryption  devise  may  not  expose  the  contents  of  information,  it  may 
stop  information  from  flowing  and  consequently  deny  the  user 
information.^  At  the  very  least  information  protection  programs  must 
include  heightened  technical  and  awareness  training  and  advanced 
intrusion  identification  devises  to  be  effective. 

Although  commercial  companies  are  the  driving  force  behind  the 
information  technology  revolution,  DOD  needs  to  lead  innovations  in 
designing  information  protection  products  that  address  its  specific 
needs.  For  example,  in  the  cMUan  world,  information  protection  is 
aimed  at  preventing  access  to  information  in  a  relativefy  static 
environment,  using  predictable  communications,  and  with  repeatable 
information  needs.  But,  in  addition  to  preventing  access  to  information, 

“  Defense  Science  Board  Summer  Study  Task  Force,  Information  Architecture  for  the  Battlefield  1994,  p.ES-2 
”  Ibid.  p.  30 
Eisen,  p.  13 
J6C,  4-1 
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DOD  has  the  additional  concern  of  protecting  and  reconfiguring 
information  systems  in  an  unknown  operating  environment,  and 
protecting  access  while  authenticating  users  and  user  systems  in  a  mobile 
climate  with  the  very  high  possibility  of  network  disruptions.^ 

DETECTION.  Network  System  Administrators  should  be  able  to  detect 
physicad  destruction  or  degradation  of  system  performance  and  effects  on 
information  outputs.  They  must  be  equipped  to  know  the  status  of  the 
infrastructure  on  a  global  basis  and  be  able  to  detect  attacks  that  cause 
system  failures.  Recent  tests  by  DISA  revealed  that  88%  of  the  targeted 
computers  could  be  penetrated,  but  only  4%  of  the  successful 
penetrations  were  detected.®^  At  the  very  least  operational  commanders 
need  to  know  when  their  systems  have  been  compromised  and  put 
contingency  plEuis  in  place. 

LIMITATION.  Force  training  must  limit  its  reliance  on  C4I  systems. 

Units  should  be  able  to  operate  efficientty  both  with  and  without  new 
technology.  They  must  utilized  the  information  provided  by  new 
technology,  but  should  also  be  trained  in  how  to  operate  at  the  grass  roots 
level  without  it.  Training  has  to  include  how  to  continue  operations  when 
information  technology  is  rendered  useless  and  should  emphasize  basic 
skills  when  the  environment  is  not  conducive  to  utilizing  technology.^ 

The  necessity  to  deal  with  a  wide  range  of  unanticipated  crises  that 
involve  joint  operations  with  questionable  coalition  partners,  places 
additional  requirements  on  DOD  information  systems.  The  abiUty  to  add 
new  users,  requirements  and  functionality  to  the  system  is  a  capability 
that  should  be  further  utilized.®®  Multi  level  security  provides  the  ability 
to  introduce  new  users  to  system  without  providing  them  overall  access. 

Ibid,  p.2-5 

Ibid,  p.2-62 

GAO,  p.3 
**  Task  Force,  p.45 
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Rather  than  installing  new  nodes  and  circuits  eveiy  time  the  US  is 
involved  in  a  Joint  military  operation  with  another  nation,  we  allow  them 
limited  access  to  our  information  ^stem.  This  does  not  entirely 
eliminate  the  problem  of  providing  coalition  members  access  to  our 
system  smd  possibly  deciphering  our  strategies,  but  it  does  provide  a 
means  for  increasing  operational  efficiencies  among  the  joint  fighting 
forces. 

RECOVERY.  Defense  forces  need  to  be  skilled  in  rapid  reconstruction. 
Network  Administrators  must  be  prepared  to  react  effectively  and 
efficiently  if,  and  when  a  problem  does  occur,  to  diagnose,  control,  and 
recover  quickly.^^  Past  experience  has  shown  that  Intruders  have  been 
able  to  crack  many  technologies  using  technical  and  non-technical 
means.  Attackers  may  choose  to  disrupt  rather  than  exploit  systems  in 
some  cases.  When  going  into  combat,  in  addition  to  taking  combat 
specialists,  CINCs  should  be  prepared  to  take  an  information  speciaUst 
specially  trained  to  troubleshoot  systems  at  critical  times.®® 

VI.  CONCLUSION. 

As  the  US  military  enters  an  age  of  IW,  it  should  not  only  concern 
itself  with  the  ever  popular  offensive  IW,  but  it  must  be  prepared  to 
delend  itself  against  attacks  to  the  critical  C4I  infrastructure. 

This  paper  presents  some  of  the  issues  the  CINC  will  be  confronted 
with  when  designing  defensive  strategy  against  IW  attacks.  In  addition  to 
the  technological  protective  measures,  institutional  changes  need  to  be 
made  in  the  training  of  users,  system  operators  and  ^stem  support 
personneltechnical  training  must  keep  pace  with  technology  so  users 
understand  how  equipment  operates.  Technicians  must  understand  how 

^  Ibid,  p.43 
J6C,  p.2-63 
^  Eisen,  p.4 
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to  recover  vita  i^stems  if  they  are  damaged.  Although  CINCs  have  no 
direct  control  over  the  training  of  most  of  their  forces  until  actual 
conflict,  they  are  in  a  position  to  Influence  these  training  Issues  by 
stressing  their  needs. ^  Also,  policy  and  information  security  training 
need  to  be  constantly  impressed  upon  users  to  keep  security  breeches  to 
a  minimum. 

The  cheillenge  for  operationed  commanders  will  be  in  not  only 
protecting  operations  from  the  malicious  attacks  by  potential  adversaries, 
but  also  the  unpredictable  natural  disruptions  to  the  infrastructure,  and 
extemcd  constraints  to  define  needs  based  on  assets  that  only  belong  to 
the  CINC  during  times  of  conflicts  or  milltaiy  operations  other  than  war 
(MOOTW).  But  a  CINC’s  most  challenging  task  will  be  operating  within  a 
nationed  component  slowly  working  to  develop  doctrine  for  an  extremely 
complex  information  systems  environment.  Though  planning  for  the 
operational  protection  of  C4I  assets  may  seem  inadequate  in  relation  to 
the  overall  problem,  as  long  as  the  level  of  consciousness  and  awareness 
of  theater  personnel  increases,  the  security  of  C4I  assets  will  benefit. 


Eisen,  p.  14 
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